-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

SUMMARY
cPanel, Inc. has released EasyApache 3.32.10 with PHP versions 5.5.32 and 5.6.18. This release addresses vulnerabilities related to CVE-2015-8383, CVE-2015-8386, CVE-2015-8387, CVE-2015-8389, CVE-2015-8390, CVE-2015-8391, CVE-2015-8393, and CVE-2015-8394. We strongly encourage all PHP 5.5 users to version 5.5.32, and all PHP 5.6 users to upgrade to version 5.6.18. 
 
AFFECTED VERSIONS

All versions of PHP 5.5 through version 5.5.31
All versions of PHP 5.6 through version 5.6.17
 
SECURITY RATING
The National Vulnerability Database (NIST) has given the following severity ratings to these CVEs:
 
CVE-2015-8383 - HIGH
PHP 5.5.32
Fixed bug in PCRE library related to CVE-2015-8383

PHP 5.6.18
Fixed bug in PCRE library related to CVE-2015-8383

CVE-2015-8386 - HIGH
PHP 5.5.32
Fixed bug in PCRE library related to CVE-2015-8386

PHP 5.6.18
Fixed bug in PCRE library related to CVE-2015-8386

CVE-2015-8387 - HIGH
PHP 5.5.32
Fixed bug in PCRE library related to CVE-2015-8387

PHP 5.6.18
Fixed bug in PCRE library related to CVE-2015-8387

CVE-2015-8389 - HIGH
PHP 5.5.32
Fixed bug in PCRE library related to CVE-2015-8389

PHP 5.6.18
Fixed bug in PCRE library related to CVE-2015-8389

CVE-2015-8390 - HIGH
PHP 5.5.32
Fixed bug in PCRE library related to CVE-2015-8390

PHP 5.6.18
Fixed bug in PCRE library related to CVE-2015-8390

CVE-2015-8391 - HIGH
PHP 5.5.32
Fixed bug in PCRE library related to CVE-2015-8391

PHP 5.6.18
Fixed bug in PCRE library related to CVE-2015-8391

CVE-2015-8393 - MEDIUM
PHP 5.5.32
Fixed bug in PCRE library related to CVE-2015-8393

PHP 5.6.18
Fixed bug in PCRE library related to CVE-2015-8393

CVE-2015-8394 - HIGH
PHP 5.5.32
Fixed bug in PCRE library related to CVE-2015-8394

PHP 5.6.18
Fixed bug in PCRE library related to CVE-2015-8394

SOLUTION
cPanel, Inc. has released EasyApache 3.32.10 with updated versions of PHP 5.5.32 and PHP 5.6.18. Unless you have disabled EasyApache updates, the EasyApache application updates to the latest version when launched. Run EasyApache to rebuild your profile with the latest version of PHP.
 
REFERENCES
https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-8383
https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-8386
https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-8387
https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-8389
https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-8390
https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-8391
https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-8393
https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-8394
http://php.net/ChangeLog-5.php
-----BEGIN PGP SIGNATURE-----
Comment: GPGTools - https://gpgtools.org
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=d6lr
-----END PGP SIGNATURE-----